starlingx/ansible-playbooks
Code Issues Proposed changes
1,763 Commits 16 Branches 11 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Marcelo Loebens 85712e2fb9 Change default subject for platform certificates 
Included a default entries for the fields:
- 'commonName' - default now is <cert_short_name>
- 'localities' - default now is <region>
- 'organization' - default now is 'starlingx'

Where:
<region> is the region name
<cert_short_name> is an internal proper name used for each of the
platform certs.

These fields can still be overridden by the user during bootstrap / CA
update. The override 'subject_prefix' is now removed.

Modified update_platform_certificates.yml playbook to delete/recreate
the leaf certificates instead of re-configuring it. In some cases,
just re-configuring would not change nested values in the Certificate
spec entries. Also, waited for the local OpenLDAP cert to be ready
before progressing, avoiding issues with remaining tasks caused by
delays in cert-manager.

Test plan:
PASS: Bootstrap system without overriding 'subject_L', 'subject_O'
      or 'subject_CN'.
      Verify that the default fields are included.

PASS: W/ default values, test Horizon access.

PASS: W/ default values, test access through remote CLI.

PASS: W/ default values, test pulling images from the local
      registry externally (outside the system).

PASS: Update platform certificates overriding all 'subject_*' fields.
      Verify that the overridden values are included in the
      respective fields.

Story: 2009811
Task: 49831

Change-Id: I208c30a6eb2c60397d50e6ea411ee5994fa27f9a
Signed-off-by: Marcelo Loebens <Marcelo.DeCastroLoebens@windriver.com>
2024-04-18 14:25:47 -04:00
examples
Change default subject for platform certificates
2024-04-18 14:25:47 -04:00
playbookconfig
Change default subject for platform certificates
2024-04-18 14:25:47 -04:00
.ansible-lint
Fix zuul failures from new release of ansible-lint
2020-08-18 10:49:30 -05:00
.gitignore
Fixing up tox -e cover for stx-config
2018-12-20 08:53:15 -06:00
.gitreview
Added .gitreview
2019-06-15 14:03:07 -05:00
.yamllint
Enable yamllint for ansible playbook .yml files
2019-06-24 13:27:26 -05:00
.zuul.yaml
Fix github mirroring for this repo
2023-04-28 12:38:49 -04:00
centos_build_layer.cfg
Build layering, add layer build config file
2019-10-15 19:47:15 +08:00
centos_iso_image.inc
Fix remote bootstrap from Windows control host
2019-07-09 17:28:06 -04:00
centos_pkg_dirs
Clean up repo import
2019-06-15 14:21:19 -05:00
CONTRIBUTORS.wrs
Clean up repo import
2019-06-15 14:21:19 -05:00
debian_build_layer.cfg
Add debian_build_layer.cfg file
2021-10-05 14:04:06 -04:00
debian_iso_image.inc
Add debian_iso_image.inc file
2021-10-27 01:56:02 -04:00
debian_pkg_dirs
Add debian package for playbookconfig
2021-09-29 18:32:15 +03:00
LICENSE
Clean up repo import
2019-06-15 14:21:19 -05:00
README.rst
starlingx/ansible-playbooks README improvement
2023-07-19 12:13:55 -03:00
requirements.txt
Fix remote play for backup and restore
2022-08-17 14:51:35 -03:00
test-requirements.txt
Fix tox ansible lint failure due to a new module
2022-01-10 11:04:20 -06:00
tox.ini
Update tox.ini to work with tox 4
2022-12-26 21:52:05 +00:00

README.rst

stx-ansible-playbooks

StarlingX Bootstrap and Deployment Ansible1 Playbooks

Execution environment

  • Unix like OS (recent Linux based distributions, MacOS, Cygwin)
  • Python 3.8 and later

Additional Required Packages

In addition to the pakages listed in requirements.txt and test-requirements.txt, the following packages are required to run the playbooks remotely:

  • python3-pexpect
  • python3-ptyprocess
  • sshpass

Supported StarlingX Releases

The playbooks are compatible with StarlingX R8.0 and later.

Executing StarlingX Playbooks

Bootstrap Playbook

For instructions on how to set up and execute the bootstrap playbook from another host, please refer to the StarlingX Documentation2, at Installation Guides, section Configure controller-0 of the respective system deployment type.

Developer Notes

This repository is not intended to be developed standalone, but rather as part of the StarlingX Source System, which is defined by the StarlingX manifest3.

References

  1. https://docs.ansible.com/ansible/latest/installation_guide↩︎

  2. https://docs.starlingx.io↩︎

  3. https://opendev.org/starlingx/manifest.git↩︎

Description
StarlingX Ansible Playbooks
Readme 30 MiB
Languages
Jinja 81.2%
Python 13.5%
Shell 5.2%